From mboxrd@z Thu Jan 1 00:00:00 1970 From: Patrick McHardy Subject: Re: -m physdev iptables: Invalid Argument Date: Sat, 25 Oct 2003 02:40:50 +0200 Sender: netfilter-devel-admin@lists.netfilter.org Message-ID: <3F99C692.90703@trash.net> References: <3F996BBA.5070106@metavize.com> <3F99B88D.1060000@trash.net> <3F99BD97.2080409@metavize.com> <3F99BFDA.6030506@trash.net> <3F99C340.2070202@metavize.com> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: 8bit Cc: netfilter-devel@lists.netfilter.org Return-path: To: Dirk Morris In-Reply-To: <3F99C340.2070202@metavize.com> Errors-To: netfilter-devel-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Unsubscribe: , List-Archive: List-Id: netfilter-devel.vger.kernel.org Dirk Morris wrote: > I assume you mean "-m physdev" > > ~ # sudo /sbin/iptables -m physdev --physdev-in eth0 -t nat -A > PREROUTING -p tcp --destination-port 7:7 -j REDIRECT --to-port > 20257 iptables: Invalid > argument > > Could you please just state the command you are using in a clear manner? > (and a uname -a) > Yes I do. Just give the proper arguments to matches without ๒ther stuff in between (which means physdev arg to phydev match, destination-port arg to tcp/udp protocol match, --to-port arg to REDIRECT) and try again. If that doesn't work, try to find out which of the matches doesn't work and if reordering of matches+their arguments helps (I've seen matches only working if they were last in command line). Regards, Patrick